Skip to main content
XIII
February 16, 2022
Question

Unable to use 1Password SSH agent at work (RSA 2048, Azure DevOps)

  • February 16, 2022
  • 27 replies
  • 3239 views

Yesterday I tested the 1Password SSH agent with my personal stuff and everything seemed fine.

Today I wanted to use it at work as well, but everything fails...

  • Git on the command line: ``` ➜ git pull sign_and_send_pubkey: signing failed: agent refused operation user@domain1.com@domain2.com: Permission denied (password,publickey). fatal: Could not read from remote repository.

Please make sure you have the correct access rights
and the repository exists.
```

  • SourceTree: ``` git -c color.branch=false -c color.diff=false -c color.status=false -c diff.mnemonicprefix=false -c core.quotepath=false -c credential.helper=sourcetree fetch origin sign_and_send_pubkey: signing failed: agent refused operation user@domain1.com@domain2.com: Permission denied (password,publickey). fatal: Could not read from remote repository.

Please make sure you have the correct access rights
and the repository exists.
sign_and_send_pubkey: signing failed: agent refused operation
user@domain1.com@domain2.com: Permission denied (password,publickey).
fatal: Could not read from remote repository.

Please make sure you have the correct access rights
```

  • Tower: ``` sign_and_send_pubkey: signing failed: agent refused operation user@domain1.com@domain2.com: Permission denied (password,publickey). fatal: Could not read from remote repository.

Please make sure you have the correct access rights
and the repository exists.
```

We're using Azure DevOps and it only supports RSA keys of 2048 bits.


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided

27 replies

K_J__1P
1Password Employee
February 22, 2022

At this time, it is a requirement on Linux and Windows. This is something we would like to improve. It's very easy to miss in the documentation (also an area for improvement). Let me know if I can help further!

https://developer.1password.com/docs/ssh/get-started#:~:text=To%20use%20the%201Password%20SSH%20agent%20on%20Linux

February 22, 2022

I installed a polkit agent and turned on system authentication. It now prompts me for my system password when using SSH keys and the functionality is perfect. Thank you very much for the help. I completely missed the info box on system authentication in the documentation.

K_J__1P
1Password Employee
February 22, 2022

No problem! I'm glad it's working for you!

bliles
March 3, 2022

Here are two related issues:
https://developercommunity.visualstudio.com/t/Support-non-RSA-keys-for-SSH-authenticat/365980
https://developercommunity.visualstudio.com/t/Git-SSH-access-offers-weak-algorithms-r/1547526

They both highlight that ADO's support for modern SSH keys and encryption standards is lacking. If you're prevented from using 1Password for SSH because of ADO's limitations perhaps you can upvote those issues.

May 25, 2022

This issue wasted a lot of time for me yesterday as I couldn't determine why SSH 1password was failing and ended up exploring lots of different things before figuring out it was a 1password update that had broken my workflow. Switched to nightly build has fixed.

floris_1P
1Password Employee
August 26, 2022

@XIII An update on ssh-rsa: the latest 1Password beta now supports this, so you should be able to use the SSH agent with Azure DevOps.

XIII
XIIIAuthor
September 2, 2022

Yes, I'm already running that. Works great! Thank you!